CN113518083A

CN113518083A - Lightweight security authentication method and device based on device fingerprint and PUF

Info

Publication number: CN113518083A
Application number: CN202110706645.7A
Authority: CN
Inventors: 缪巍巍; 曾锃; 王传君; 李世豪; 张震; 张瑞; 张明轩; 滕昌志; 胡游君; 周忠冉; 张文鹏; 刘赛; 蔡世龙
Original assignee: State Grid Jiangsu Electric Power Co Ltd; Nari Information and Communication Technology Co; Information and Telecommunication Branch of State Grid Jiangsu Electric Power Co Ltd
Current assignee: State Grid Jiangsu Electric Power Co Ltd; Nari Information and Communication Technology Co; Information and Telecommunication Branch of State Grid Jiangsu Electric Power Co Ltd
Priority date: 2021-06-24
Filing date: 2021-06-24
Publication date: 2021-10-19
Anticipated expiration: 2041-06-24
Also published as: CN113518083B

Abstract

The invention discloses a lightweight security authentication method and a lightweight security authentication device based on device fingerprints and PUF (physical unclonable function), wherein the method comprises the step of generating a message M by edge Internet of things equipment₀And an authentication parameter I₀Sending to the device management; device management based on received message M₀Calculate the hash value I₀', if I₀' and I₀Equal, then M is generated₁And further generating an authentication parameter I₁(ii) a Device management message M₁And an authentication parameter I₁Sending the data to the edge Internet of things equipment through connection management; edge internet of things equipment based on received message M₁Calculating a hash value I₁', if I₁' and I₁Equal, then generate the session key k_iUpdate its false ID

Then will be

Sending to the device management; device management generating new false identity

And verify

If I₂Through verification, the device management party stores

For future authentication requests. The invention can realize the anonymity and the safety of the equipment of the Internet of things.

Description

Lightweight security authentication method and device based on device fingerprint and PUF

Technical Field

The invention belongs to the field of security authentication and Internet of things, and particularly relates to a lightweight security authentication method and device based on device fingerprints and PUFs.

Background

With the ever-increasing growth of internet of things (IoT) devices, especially in the context of massive terminal access to the IoT, the large amount of data generated by these devices can lead to a number of security and privacy issues. In the internet of things, the most important security requirements include device authentication and privacy security. But existing research on internet of things device authentication is not exhaustive and most solutions are susceptible to simulation, cloning, denial of service (DoS) and physical attacks.

The existing internet of things equipment authentication research can be divided into three types, namely equipment authentication schemes based on security primitives, hardware and wireless channel characteristics. Device authentication techniques based on security primitives use filters, hash chains, blockchains, or Zero Knowledge Proof (ZKP) to achieve device authentication, for example, an internet of things device authentication technique using bloom filters and attribute-based encryption has been proposed. However, this technology requires the internet of things device to store the source information, but in practical applications, this is not necessarily feasible (the internet of things device has a small memory). Furthermore, an attacker can easily tamper with the provenance information stored in the device using a physical attack. It has also been proposed to use identity-based hash chains to transmit provenance information between multiple internet of things devices. But the technology relies on the identity information of the equipment in the internet of things, so the technology is easy to be attacked by simulation. Methods for device authentication using non-interactive ZKPs, data source compression algorithms, or blockchains have also been proposed, but these approaches may result in high computational complexity and computationally intensive operations. Hardware-based device authentication schemes are implemented using specialized hardware, such as a Trusted Platform Module (TPM), but these hardware-based techniques rely on specialized hardware, which is prohibitively expensive for internet of things devices.

Security based on wireless channel characteristics is currently a well studied area. Existing literature includes key generation, proximity-based authentication, secure pairing, Sybil attack detection, and intrusion detection. For example, some techniques use Received Signal Strength Indicator (RSSI) values to generate unique wireless fingerprints in a body area network. However, this technique has high communication and computation overhead due to the length and optimization of the wireless fingerprint. Another approach using a multi-hop source protocol uses RSSI values but has no authentication mechanism so an attacker can easily spoof the RSSI values to hide its location.

In fact, we have found that the existing device authentication techniques in the internet of things all have one or more of the following problems: (1) rely on security hardware that is too expensive for internet of things devices; (2) all devices must have the same architecture; (3) the calculation is too complex for the equipment of the Internet of things; (4) the method is easy to be attacked by physics and clone, and has no privacy protection; (5) a transient secret disclosure (ESL) attack may be used.

Disclosure of Invention

In order to solve the problems, the invention provides a lightweight security authentication method and device based on device fingerprints and PUFs, which can realize the anonymity and security of the Internet of things device.

In order to achieve the technical purpose and achieve the technical effects, the invention is realized by the following technical scheme:

in a first aspect, the present invention provides a lightweight security authentication method based on a device fingerprint and a PUF, including:

edge internet of things equipment generating random noise N₁And generating a secret response R in combination with its PUFⁱGenerating messages

Wherein the content of the first and second substances,

representing a false identity;

the edge Internet of things equipment is based on the message

Generating an authentication parameter I₀＝H(M₀||Rⁱ) H is a hash function, and combines the messages

And an authentication parameter I₀＝H(M₀||Rⁱ) Sending to the device management;

device management based on received messages

Calculate the hash value I₀', if I₀' and I₀When they are equal, a random noise N is generated₂Further generate a message

And further generates an authentication parameter I₁＝H(M₁||N₁||N₂||Rⁱ)；

Device management messaging

And an authentication parameter I₁＝H(M₁||N₁||N₂||Rⁱ) Sending the data to the edge Internet of things equipment through connection management;

edge internet of things equipment based on received message

Calculate the hash value I₁', if I₁' and I₁If they are equal, then generating session key

Update its false ID

Then will be

Sending to the device management; ID_AThe identification number represents the edge Internet of things equipment;

device management generating new false identity

And verify

If it is

Through verification, the device management party stores

For future authentication requests.

Optionally, the method further comprises:

edge internet of things equipment generating random noise N₃Then generate

And V₁＝H(D₁||k_i||N₃) Then, D is₁And V₁Sending the Data to connection management, wherein the Data represents the Data content to be transmitted; f_GAThe wireless fingerprint is generated by sampling a wireless channel by the edge Internet of things equipment;

connection management creation message D_G＝{F_AGH and corresponding authentication parameter V_G＝H(D_G||k_GS) And D is_GAnd V_GTo device management, F_AGA wireless fingerprint generated by sampling a wireless channel for connection management;

device management using session key k_iAnd a secret symmetric key k_GSAre respectively to D₁And D_GDecrypting to obtain Data and wireless fingerprint, if the wireless channel is not damaged, and F_AG＝F_GAIf the equipment management receives the data, the equipment management sends authentication parameters to the edge Internet of things equipment

As a confirmation;

v received by edge Internet of things equipment in butt joint_SAnd carrying out verification, and if the verification is successful, carrying out data transmission.

Alternatively, if F_AG≠F_GAIf the data is not received, the equipment management refuses to receive the data sent by the edge Internet of things equipment; if V_SAnd if the verification fails, the edge Internet of things equipment retransmits the data.

Optionally, the wireless channel corruption is obtained by:

respectively calculate F_GAAnd F_AGAnd the difference between the two variances, i.e., Δ ═ Var (F), is taken_GA)-Var(F_AG) Var represents variance operation;

comparing the delta with a threshold, if the delta is smaller than the threshold, a wireless link between the edge Internet of things equipment and equipment management is considered to be legal, otherwise, a channel between the edge Internet of things equipment and the equipment management is considered to be damaged, and data is discarded.

Optionally, the internet of things device stores CRP, and the method further includes updating CRP, and specifically includes the following steps:

device management to connection management routing

And

Cⁱ⁺¹a query representing the (i + 1) th iteration;

edge internet of things equipment decryption M₁Obtaining Cⁱ⁺¹And N₁And is combined withVerifying authentication parameter X₁And then the edge Internet of things equipment stores the new Cⁱ⁺¹And use it to generate a new secret response Rⁱ⁺¹；

Edge internet of things equipment generating random noise N₂And generate a new false ID

Internet of things equipment sends M to equipment management₂＝{Rⁱ⁺¹,N₁,N₂} and corresponding authentication parameters

Device management decryption M₂From which R is obtainedⁱ⁺¹And N₂And use of N₂Generating a new false identity

And verify X₂；

CRP of edge Internet of things equipment is replaced by (C) by equipment managementⁱ⁺¹,Rⁱ⁺¹)。

In a second aspect, the present invention provides a lightweight security authentication apparatus based on a device fingerprint and a PUF, including: edge Internet of things equipment, connection management and equipment management which are connected in sequence;

Wherein the content of the first and second substances,

representing a false identity;

the edge Internet of things equipment is based on the message

device management based on received messages

Device management messaging

edge internet of things equipment based on received message

Update its false ID

Then will be

device management generating new false identity

And verify

If it is

Through verification, the device management party stores

For future authentication requests.

Optionally, the edge internet of things device generates random noise N₃Then generate

As a confirmation;

edge internet of things equipment butt joint receiverV of_SAnd carrying out verification, and if the verification is successful, carrying out data transmission.

Optionally, the wireless channel corruption is obtained by:

device management to connection management routing

And

Cⁱ⁺¹a query representing the (i + 1) th iteration;

edge internet of things equipment decryption M₁Obtaining Cⁱ⁺¹And N₁And verifying the authentication parameter X₁And then the edge Internet of things equipment stores the new Cⁱ⁺¹And use it to generate a new secret response Rⁱ⁺¹；

Internet of things equipment sends M to equipment management₂＝{Rⁱ⁺¹,N₁,N₂Andcorresponding authentication parameters

And verify X₂；

Compared with the prior art, the invention has the beneficial effects that:

the invention does not need any special hardware (except PUF, the manufacturing cost of PUF is extremely low, the PUF can support ultra-high throughput, and has extremely low energy and silicon area); encrypting by using a lightweight symmetric key; the Internet of things equipment cannot store important secret information in the memory; the PUFs can realize the trust based on equipment authentication, particularly the trust of a data position is realized by wireless fingerprints, so that a credible authentication mode is provided; the actual identity of the equipment of the Internet of things is hidden by using false identity information, so that privacy protection is realized; by combining the PUF output with the short-term secret information to generate a session key, a recovery capability against ESL attacks can be achieved, and even if an attacker takes the short-term secret information, the session key cannot be calculated.

Drawings

In order that the present disclosure may be more readily and clearly understood, reference is now made to the following detailed description of the present disclosure taken in conjunction with the accompanying drawings, in which:

FIG. 1 is a general process diagram of the security authentication method for mass edge devices proposed by the present invention;

fig. 2 is a schematic diagram of the device authentication phase process of the protocol proposed by the present invention;

fig. 3 is a schematic diagram of a data transmission process of the protocol proposed by the present invention;

fig. 4 is a schematic diagram of CRP update of the protocol proposed by the present invention.

Detailed Description

In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is further described in detail with reference to the following embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and do not limit the scope of the invention.

The following detailed description of the principles of the invention is provided in connection with the accompanying drawings.

Aiming at the problems in the prior art, the invention provides the following steps: (1) developing an analytical model to implement device authentication without requiring any additional complex calculations; (2) no special hardware is needed (except for PUF, the manufacturing cost of PUF is extremely low, and the PUF can support ultra-high throughput and has extremely low energy and silicon area); (3) encrypting by using a lightweight symmetric key; (4) the Internet of things equipment cannot store important secret information in the memory; (5) the PUFs can realize the trust based on equipment authentication, particularly the trust of a data position is realized by wireless fingerprints, so that a credible authentication mode is provided; (6) the actual identity of the equipment of the Internet of things is hidden by using false identity information, so that privacy protection is realized; (7) by combining the PUF output with the short-term secret information to generate a session key, a recovery capability against ESL attacks can be achieved, and even if an attacker takes the short-term secret information, the session key cannot be calculated.

Example 1

Equipment registration: storing an initial CRP (C) for each edge IOT deviceⁱ,Rⁱ) And false identity (SID)ⁱ)，CⁱQuery, R, representing the ith iterationⁱRepresents to the current CⁱPUF response, SIDⁱAn anonymous ID representing the internet of things device of the ith iteration. The server also stores an emergency CRP list (C) for each edge IOT device_em) And an emergency identity list, EID, to mitigate DoS attacks. The initial parameters are obtained by the server using a time-based one-time password algorithm (TOTP) and an operator using a password. Storage C for each edge Internet of things deviceⁱ、SIDⁱ、C_emAnd an EID.While we assume that device management and connection management have a pre-shared secret symmetric key k_GS。

The embodiment of the invention provides a lightweight security authentication method based on device fingerprints and PUFs (physical unclonable functions), as shown in FIG. 2, the method comprises the following steps:

Wherein the content of the first and second substances,

representing a false identity; the secret response RⁱThe generation process specifically comprises the following steps: edge internet of things device ID_AChallenge C using the stored ith iterationⁱAnd its PUF to generate a secret response Rⁱ；

Connection management in wireless fingerprint F_AGAfter sampling, the edge internet of things device bases on the message

Generating an authentication parameter I₀＝H(M₀||Rⁱ) H is a hash function, as shown in FIG. 2, and combines the messages

And an authentication parameter I₀＝H(M₀||Rⁱ) Sent as message 1 to the device management;

device management based on received messages

Device management messaging

And an authentication parameter I₁＝H(M₁||N₁||N₂||Rⁱ) Sending the message 2 to the edge Internet of things equipment through connection management;

upon receiving message 2, the edge internet of things device samples the wireless channel to generate a wireless fingerprint F_GA. Edge internet of things equipment based on received message

Update its false ID

Then will be

Sent as message 3 to the device management; ID_AThe identification number represents the edge Internet of things equipment;

device management generating new false identity

And verify

If it is

Through verification, the device management party stores

For future authentication request to completeAnd (5) identity authentication.

After the edge internet of things device successfully performs identity authentication on the device management, data transmission encryption is performed on files with large data volume, otherwise, transmission is not encrypted, and as shown in fig. 3, the specific encryption transmission process is as follows:

edge internet of things equipment generating random noise N₃Then generate

And V₁＝H(D₁||k_i||N₃) Then, D is₁And V₁Sending the message to the connection management as a message 4, wherein Data represents the Data content to be transmitted; f_GAThe wireless fingerprint is generated by sampling a wireless channel by the edge Internet of things equipment;

connection management creation message D_G＝{F_AGH and corresponding authentication parameter V_G＝H(D_G||k_GS) And D is_GAnd V_GTo the device management as message 5, F_AGA wireless fingerprint generated by sampling a wireless channel for connection management;

As message 6 as acknowledgement; if F_AG≠F_GAIf the data is not received, the equipment management refuses to receive the data sent by the edge Internet of things equipment;

v received by edge Internet of things equipment in butt joint_SVerifying, and if the verification is successful, transmitting data; if V_SAnd if the verification fails, the edge Internet of things equipment retransmits the data.

The wireless channel destruction is obtained by the following steps:

comparing the delta with a threshold, if the delta is smaller than the threshold, a wireless link between the edge Internet of things equipment and equipment management is considered to be legal, otherwise, a channel between the edge Internet of things equipment and the equipment management is considered to be damaged, and data are discarded; the calculation principle of the variance is specifically as follows:

consider a plurality of internet of things devices sending data to a server through a wireless gateway connected to the internet.

The premise hypothesis is that: (1) each internet of things device has a PUF and is considered a feature of the SoC. If the PUF is separated from the Internet of things device, the PUF is assumed to be invalid and damaged at the moment; (2) the microcontroller and PUF constitute a SoC, between which communication is considered secure; (3) the internet of things devices are limited in memory, energy and processing capacity, while the servers have no resource limitations.

And (3) threat model: after the identity authentication with the server is carried out, the Internet of things equipment starts to send data packets to the server. An adversary can inject, replay, tamper and eavesdrop data packets sent by the Internet of things equipment. The protocol proposed by the present invention is based on the CK countermeasure model. Under the CK countermeasure model, the adversary can see the session state, private key, and session key in addition to the DY model. It is further assumed that an adversary may gain physical access to the internet of things device and physically attack it to extract the stored secret information. The query set for these attack patterns is modeled as follows:

(1) SendS (S, m0, r0, m1) models queries where adversary a attempts to simulate a legitimate internet of things device by sending a message m0 to server S, then the server replies with r0, and then the internet of things device SendS m1 to server S.

(2) SendID (ID, m0, r0) models the query, where adversary A attempts to simulate a server by sending message m0 and receiving r0 from the Internet of things device.

(3) Monitor (ID, S) represents the ability of an adversary to observe and eavesdrop the wireless channel between the internet of things device ID and the server S.

(4) Drop (a) represents a query by an adversary to drop packets between ID and S, which can be used to break synchronization between the two parties by selectively dropping packets.

(5) Reveal (id) represents the ability of an adversary to extract secret information stored in the internet of things device memory using a physical attack.

An adversary may invoke SendS, SendID, Monitor, and Drop queries multiple times. It is noted that any attempt to make a physical change to the internet of things device will disable it, so the Reveal can only be invoked once by a. The protocol provided by the invention aims to realize equipment authentication, data tracing, privacy protection and security against DoS and physical attacks.

Data credibility technology: LQI is the average of the error of the ideal signal and the received signal over 64 symbols after the sync word. The LQI calculation is as follows:

wherein y is_nIs a received time domain OFDM signal, x_nIs the nth time domain reference signal, e_nIs an error vector for an OFDM symbol with n ≦ n-1. P0 is the average symbol power for a given modulation, which makes LQI independent of the modulation order. And the received time domain OFDM signal y_nCan be expressed as

y_n＝H_nx_n+η_n (2)

Wherein H_nRepresenting Rayleigh-distribution channel coefficients, η_nIs a mean of 0 and a variance of

White gaussian additive noise (AWGN). For a large number of subcarriers, x_nCan be viewed as an approximately independent identically distributed (i.i.d.) gaussian distribution with mean 0 and variance

When N is very largeThen, L is approximated as a Gaussian random variable according to the central limit theorem, i.e.

Therefore, to characterize L, we need to find its mean μ_LAnd

according to the standard path loss law

Path loss exponent of alpha, and use of r-alpha_iAs H_nAverage power of, finally we get μ_LAs follows:

wherein r is_iAnd the distance between the node of the internet of things and the wireless gateway is represented. Furthermore, E [ | E_n|²]Given below:

to find the variance of L, we get σ_L ²＝E[L²]-(μ_L)². To obtain E [ L ]²]We proceed as follows:

assuming that each block has an attenuation of m symbols, we have L²The expectation is that:

the variance can be obtained by using (3) and (6)

Can be obtained in a similar manner to (4).

Let us consider the following scenario: alice and Bob are talking. Alice is an Internet of things device and Bob is a wireless gateway. Two adversaries are located nearby but at least one wavelength from Alice and Bob and attempt to send tamper data to the gateway. A hostile channel between Alice and Bob may be detected using the following steps:

(1) alice and Bob sample the LQI values of the wireless channel between them to generate respective wireless fingerprints.

(2) Alice and Bob send their wireless fingerprints to the verifier.

(3) The verifier calculates the variance of each wireless fingerprint and takes the difference between the two variances, i.e., Δ ═ Var (F)_Alice)-Var(F_Bob) In which F is_AliceAnd F_BobRepresenting the wireless fingerprints of Alice and Bob, respectively. Var represents the variance operation. The server then compares the delta to a threshold.

If Δ is less than the threshold, the wireless link between Alice and Bob is considered legitimate. Otherwise, the channel between Alice and Bob will be considered corrupted and the data will be discarded.

As shown in fig. 4, the internet of things device stores CRP, and the method further includes updating CRP, and specifically includes the following steps:

device management messaging to connection management

Cⁱ⁺¹A query representing the (i + 1) th iteration;

Internet of things equipment sends message 8 (M) to equipment management₂＝{Rⁱ⁺¹,N₁,N₂} and corresponding authentication parameters

And verify X₂；

Example 2

An embodiment of the present invention provides a lightweight security authentication apparatus based on a device fingerprint and a PUF, as shown in fig. 1, including: edge Internet of things equipment, connection management and equipment management which are connected in sequence;

Wherein the content of the first and second substances,

The edge Internet of things equipment is based on the message

Generating an authentication parameter I₀＝H(M₀||Rⁱ) H isHash function, and send the message

device management based on received messages

Device management messaging

edge internet of things equipment based on received message

Update its false ID

Then will be

device management generating new artifactsIdentity label

And verify

If it is

Through verification, the device management party stores

For future authentication requests.

In a specific implementation manner of the embodiment of the present invention, the edge internet of things device generates random noise N₃Then generate

As a confirmation; if F_AG≠F_GAThen the device management refuses to receiveData sent by the edge Internet of things equipment;

In a specific implementation manner of the embodiment of the present invention, the wireless channel destruction condition is obtained by the following steps:

The internet of things equipment is stored with CRP, the method further comprises the step of updating CRP, and the method specifically comprises the following steps:

device management to connection management routing

And

Cⁱ⁺¹a query representing the (i + 1) th iteration;

Internet of things equipment sends M to equipment management₂＝{Rⁱ⁺¹,N₁,N₂} and corresponding authenticationParameter(s)

And verify X₂；

The foregoing shows and describes the general principles and broad features of the present invention and advantages thereof. It will be understood by those skilled in the art that the present invention is not limited to the embodiments described above, which are described in the specification and illustrated only to illustrate the principle of the present invention, but that various changes and modifications may be made therein without departing from the spirit and scope of the present invention, which fall within the scope of the invention as claimed. The scope of the invention is defined by the appended claims and equivalents thereof.

Claims

1. A lightweight security authentication method based on device fingerprints and PUFs is characterized by comprising the following steps:

Wherein the content of the first and second substances,

representing a false identity;

the edge Internet of things equipment is based on the message

Generating an authentication parameter I₀＝H(M₀||Rⁱ) H is HaHis function, and combines the message

device management based on received messages

Device management messaging

edge internet of things equipment based on received message

Update its false ID

Then will be

Sending to the device management; ID_ARepresenting edgesAn identification number of the Internet of things device;

device management generating new false identity

And verify

If it is

Through verification, the device management party stores

For future authentication requests.

2. The lightweight security authentication method based on device fingerprint and PUF according to claim 1, further comprising:

edge internet of things equipment generating random noise N₃Then generate

As a confirmation;

3. The lightweight security authentication method based on device fingerprint and PUF according to claim 2, characterized in that: if F_AG≠F_GAIf the data is not received, the equipment management refuses to receive the data sent by the edge Internet of things equipment; if V_SAnd if the verification fails, the edge Internet of things equipment retransmits the data.

4. The lightweight security authentication method based on device fingerprint and PUF according to claim 2, characterized in that: the wireless channel destruction is obtained by the following steps:

5. The lightweight security authentication method based on the device fingerprint and the PUF according to claim 1, wherein the internet of things device has a CRP stored therein, and the method further includes updating the CRP, and specifically includes the following steps:

device management to connection management routing

And

Cⁱ⁺¹a query representing the (i + 1) th iteration;

And verify X₂；

6. A lightweight security authentication apparatus based on device fingerprints and PUFs, comprising: edge Internet of things equipment, connection management and equipment management which are connected in sequence;

Wherein the content of the first and second substances,

representing a false identity;

the edge Internet of things equipment is based on the message

device management based on received messages

Device management messaging

edge internet of things equipment based on received message

Update its false ID

Then will be

device management generating new false identity

And verify

If it is

Through verification, the device management party stores

For future authentication requests.

7. The device fingerprint and PUF based lightweight security authentication apparatus according to claim 6, wherein: random noise N generated by edge Internet of things equipment₃Then generate

As a confirmation;

8. The device fingerprint and PUF based lightweight security authentication apparatus according to claim 7, wherein: if F_AG≠F_GAIf the data is not received, the equipment management refuses to receive the data sent by the edge Internet of things equipment; if V_SAnd if the verification fails, the edge Internet of things equipment retransmits the data.

9. The device fingerprint and PUF based lightweight security authentication apparatus according to claim 7, wherein: the wireless channel destruction is obtained by the following steps:

10. The device fingerprint and PUF based lightweight security authentication apparatus according to claim 6, wherein: the internet of things equipment is stored with CRP, the method further comprises the step of updating CRP, and the method specifically comprises the following steps:

device management to connection management routing

And

Cⁱ⁺¹a query representing the (i + 1) th iteration;

And verify X₂；